Teknoids Newshttp://www.teknoids.com
News Teknoids NeedFri, 22 Feb 2019 02:35:54 +0000en-UShourly1https://wordpress.org/?v=4.9.964850229Millions of websites threatened by highly critical code-execution bug in Drupalhttp://www.teknoids.com/2019/02/21/millions-of-websites-threatened-by-highly-critical-code-execution-bug-in-drupal/
Fri, 22 Feb 2019 02:35:54 +0000http://www.teknoids.com/2019/02/21/millions-of-websites-threatened-by-highly-critical-code-execution-bug-in-drupal/Continue Reading →]]>Enlarge (credit: Victorgrigas)
Millions of sites that run the Drupal content management system run the risk of being hijacked until they’re patched against a vulnerability that allows hackers to remotely execute malicious code, managers of the open source project warned Wednesday.
CVE-2019-6340, as the flaw is tracked, stems from a failure to sufficiently validate user input, managers said in an advisory. Hackers who exploited the vulnerability could, in some cases, run code of their choice on vulnerable websites. The flaw is rated highly critical.
“Some field types do not properly sanitize data from non-form sources,” the advisory stated. “This can lead to arbitrary PHP code execution in some cases.”
Read 5 remaining paragraphs | Comments
Original URL: https://arstechnica.com/?p=1462289

]]>14922Almost a week of no internet at Amherst Collegehttp://www.teknoids.com/2019/02/21/almost-a-week-of-no-internet-at-amherst-college/
Thu, 21 Feb 2019 14:30:42 +0000http://www.teknoids.com/2019/02/21/almost-a-week-of-no-internet-at-amherst-college/Continue Reading →]]>Amherst College experienced a catastrophic technical mishap last week that left the campus without access to online services — for five days.

As IT staff scrambled to fix the problem, faculty and students suddenly found themselves without access to Wi-Fi, email, Moodle, accounting systems, card-scanning systems or any content hosted on the Amherst.edu website.

That a scenario totally inconceivable on most modern campuses occurred at the wealthy private, liberal arts college in Amherst, Mass., was doubly surprising.

“How could this happen?” became a common refrain on campus. How could an elite college with a $2.2 billion endowment and that charges more than $50,000 in tuition a year fail to provide basic services, such as internet access?

With Wi-Fi services down, some students used their cellphone data to tweet their disbelief.

It’s been 4 days. WiFi is still down. Professor can’t teach us anything, and I don’t even have any ways to procrastinate my work. Hell is real

Original URL: https://www.insidehighered.com/news/2019/02/21/almost-week-no-internet-amherst-college

]]>14918You Have Around 20 Minutes To Contain a Russian APT Attackhttp://www.teknoids.com/2019/02/19/you-have-around-20-minutes-to-contain-a-russian-apt-attack/
Tue, 19 Feb 2019 15:48:00 +0000http://www.teknoids.com/2019/02/19/you-have-around-20-minutes-to-contain-a-russian-apt-attack/Continue Reading →]]>When a Russian nation-state actor attacks a government or a private organization, they have about 20 minutes to detect and contain the attack. From a report: New statistics published today by US cyber-security firm Crowdstrike ranked threat groups based on their “breakout time.” “Breakout time” refers to the time a hacker group takes from gaining initial access to a victim’s computer to moving laterally through its network. This includes the time the attacker spends scanning the local network and deploying exploits in order to escalate his access to other nearby computers.

[…] According to data gathered from 2018 hack investigations, CrowdStrike says Russian hackers (which the company calls internally “Bears”) have been the most prolific and efficient hacker groups last year, with an average breakout time of 18 minutes and 49 seconds.

Read more of this story at Slashdot.

Original URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/3EPaLCl4BXk/you-have-around-20-minutes-to-contain-a-russian-apt-attack

]]>149172019-02-17 16:47:49http://www.teknoids.com/2019/02/17/2019-02-17-164749/
Sun, 17 Feb 2019 22:26:11 +0000http://www.teknoids.com/2019/02/17/2019-02-17-164749/Discourse is not Twitter’s strength, not because of the thread structure, rather that it’s a write-only community of attention seekers. Most of what passes for discourse is thinly disguised spam.
Original URL: http://scripting.com/2019/02/17.html#a164749

]]>14916Updated WSL in Windows 10 version 1903 lets you access Linux files from Windowshttp://www.teknoids.com/2019/02/16/updated-wsl-in-windows-10-version-1903-lets-you-access-linux-files-from-windows/
Sat, 16 Feb 2019 21:57:15 +0000http://www.teknoids.com/2019/02/16/updated-wsl-in-windows-10-version-1903-lets-you-access-linux-files-from-windows/Continue Reading →]]>The marriage between Linux and Windows is getting stronger. Having embraced Linux with WSL (Windows Subsystem for Linux), Microsoft is now doing what users have been begging for: Windows 10 April 2019 Update makes it possible to access Linux files from Windows. As well as enabling you to open Linux files from within Explorer, Windows 10 version 1903 gives you the option of editing Linux files from Windows. See also: Microsoft takes Insiders into next year, with the release of the first Windows 10 20H1 build Forget Linux — Here’s how to install Windows 10 on Raspberry Pi 3 Dirty_Sock… [Continue Reading]
Original URL: https://betanews.com/2019/02/16/access-linux-files-from-windows/

]]>14914We’ve Integrated the FJC Integrated Database into CourtListenerhttp://www.teknoids.com/2019/02/14/weve-integrated-the-fjc-integrated-database-into-courtlistener/
Thu, 14 Feb 2019 20:58:20 +0000http://www.teknoids.com/2019/02/14/weve-integrated-the-fjc-integrated-database-into-courtlistener/Continue Reading →]]>The Integrated Database provided by the Federal Judicial Center is one of the best-kept secrets in the world of legal information. Updated quarterly, it has metadata about every case in PACER (and many that are not), including civil, criminal, and bankruptcy cases. If the case is in PACER, this is often the only way to get in-depth metadata about it short of carefully reading the docket. The IDB is a treasure trove of data for researchers, litigants, and the public.
We are proud to share that we have begun integrating the IDB into our dockets on CourtListener. This is the first time we know of that the IDB data has been united with data from PACER data in an easily accessible way.
This project was made possible through generous support from one of our sponsors.

View a Live Example

So far we have integrated the IDB civil data set, so when you look at civil

Original URL: https://free.law/2019/02/14/weve-integrated-the-fjc-integrated-database-into-courtlistener/